Cisco Firesight System Software vulnerabilities
5 known vulnerabilities affecting cisco/cisco_firesight_system_software.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-12696HIGHCVSS 7.5≥ unspecified, < n/a2019-10-02
CVE-2019-12696 [HIGH] CWE-693 CVE-2019-12696: Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unau
Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.
cvelistv5nvd
CVE-2019-12697HIGHCVSS 7.5≥ unspecified, < n/a2019-10-02
CVE-2019-12697 [HIGH] CWE-693 CVE-2019-12697: Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unau
Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.
cvelistv5nvd
CVE-2018-0453HIGHCVSS 8.2vn/a2018-10-05
CVE-2018-0453 [HIGH] CWE-264 CVE-2018-0453: A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software
A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) sensors could allow an authenticated, local attacker to execute specific CLI commands with root privileges on the Cisco Firepower Management Center (FMC), or through Cisco FMC on other Firepower sensors and
cvelistv5nvd
CVE-2018-0455HIGHCVSS 7.5vn/a2018-10-05
CVE-2018-0455 [HIGH] CWE-19 CVE-2018-0455: A vulnerability in the Server Message Block Version 2 (SMBv2) and Version 3 (SMBv3) protocol impleme
A vulnerability in the Server Message Block Version 2 (SMBv2) and Version 3 (SMBv3) protocol implementation for the Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the device to run low on system memory, possibly preventing the device from forwarding traffic. It is also possible that a manual reload of the device
cvelistv5nvd
CVE-2017-6735MEDIUMCVSS 6.7vCisco FireSIGHT System Software2017-07-10
CVE-2017-6735 [MEDIUM] CVE-2017-6735: A vulnerability in the backup and restore functionality of Cisco FireSIGHT System Software could allow an authenticated, local attacker to execute arb
A vulnerability in the backup and restore functionality of Cisco FireSIGHT System Software could allow an authenticated, local attacker to execute arbitrary code on a targeted system. More Information: CSCvc91092. Known Affected Releases: 6.2.0 6.2.1.
cvelistv5